| Age | Commit message (Collapse) | Author | |
|---|---|---|---|
| 2006-03-31 | Add sysctl to retrieve the routing table statisitcs. Will be used by netstat | Claudio Jeker | |
| instead of kvm access. OK henning@ | |||
| 2006-03-30 | In sysctl_dumpentry() pass the rt_refcnt by overloading rmx_rttvar. | Claudio Jeker | |
| This new rmx_refcnt can be used by route(8) to produce the same output as netstat(1). OK henning@ | |||
| 2006-03-30 | Spelling in comment. | Claudio Jeker | |
| 2006-03-25 | allow bpf(4) to ignore packets based on their direction (inbound or | Damien Miller | |
| outbound), using a new BIOCSDIRFILT ioctl; guidance, feedback and ok canacar@ | |||
| 2006-03-25 | fixup IP checksum when modifying IP header fields, based on a patch in | Daniel Hartmeier | |
| fbsd PR 93849 from Max Laier, ok claudio@ | |||
| 2006-03-22 | prevent anything outside rote.c from accessing the routing table heads | Henning Brauer | |
| directly. rather provide a rt_lookup function for regular lookups, and a rt_gettable for those that need access to the head for some reason. the latter cases should be revisted later probably so that nothing outside the routing core code accesses the heads at all... tested claudio jolan me, ok claudio markus | |||
| 2006-03-20 | introduce rt_if_remove which takes care of routing table updates for an | Henning Brauer | |
| interface that is removed. use that from if.c and if_tun.c instead of re-implementing in the latter case. ok claudio | |||
| 2006-03-16 | Switch tun(4) from encapsualting packets into a long mbuf chain over to use | Claudio Jeker | |
| mbuf clusters if the packet is big enough. This should speed up tun(4) and may help in other cases where long mbuf chains hurt. Additionally switch the default tun(4) MTU to a more sane 1500 bytes. TUNMTU is kept because it is used in userland. Input and OK from brad@ and djm@ | |||
| 2006-03-14 | implement a Unicast Reverse Path Forwarding (uRPF) check for pf(4) | Damien Miller | |
| which optionally verifies that a packet is received on the interface that holds the route back to the packet's source address. This makes it an automatic ingress filter, but only when routing is fully symmetric. bugfix feedback claudio@; ok claudio@ and dhartmei@ | |||
| 2006-03-12 | remove BPF filter support if the bpfilter device is removed. | Brad Smith | |
| 2006-03-11 | splimp -> spltty/splnet | Brad Smith | |
| ok miod@ | |||
| 2006-03-11 | Check against GIF_MTU_MIN/GIF_MTU_MAX for the min/max MTU size. | Brad Smith | |
| 2006-03-11 | splimp -> splnet | Brad Smith | |
| 2006-03-07 | use the cu_bridge_id rather than the cu_rootid for the bridge address. | Brad Smith | |
| From: Onno Molenkamp via Andrew Thompson <thompsa at freebsd dot org> ok jason@ | |||
| 2006-03-06 | get rid of questionable macro gore. | Henning Brauer | |
| a 200+ lines diff, but no binary change. | |||
| 2006-03-06 | change a questionable multi-level foo ? a : b construct into readable | Henning Brauer | |
| code. no binary change. | |||
| 2006-03-06 | more cleanup, again no binary change. | Henning Brauer | |
| as the previous changes from a train ride to frankfurt a bit over a week ago | |||
| 2006-03-06 | cvhange a KASSERT into a if() .. panic() construct so the binary doesn't | Henning Brauer | |
| change every time a line is added or removed. no functional change. | |||
| 2006-03-06 | KNF, cleanup etc, no binary change | Henning Brauer | |
| 2006-03-05 | change the interface type from IFF_POINTOPOINT to the more correct | Brad Smith | |
| type of IFF_TUNNEL (Encapsulation interface). ok djm@ | |||
| 2006-03-04 | With the exception of two other small uncommited diffs this moves | Brad Smith | |
| the remainder of the network stack from splimp to splnet. ok miod@ | |||
| 2006-02-27 | add missing break; now filters containing a division can pass | Otto Moerbeek | |
| validation; from NetBSD; ok deraadt@ | |||
| 2006-02-24 | Another gem from the the-world-runs-on-i386 departement. Using u_long in | Claudio Jeker | |
| a packet format causes some troubles on 64bit archs. This fixes a sppp(4) panic I got on alpha and makes cisco HDLC mode actually work. More cleanup needs to be done post 3.9. OK brad@ looks good canacar@ | |||
| 2006-02-23 | Until now it was only possible to unset the RTF_JUMBO flag on a RTM_CHANGE | Claudio Jeker | |
| request. Extend the "hack" to include more flags (RTF_PROTO[123] flags, RTF_BLACKHOLE, RTF_REJECT and RTF_STATIC). Because rtm_use is "abused" -- rtm_use was replaced long time ago with rtm_rmx->rmx_pksent -- it is now forced to 0 in RTM_GET requests and sysctl_dumpentry(). This is done to prevent false changes because of a reused RTM_GET message. OK henning@, mcbride@, makes sense markus@ | |||
| 2006-02-20 | Fix kernel builds without bpfilter. Linking is still broken. | Damien Bergamini | |
| "Please commit this diff ASAP" brad@ | |||
| 2006-02-09 | remove trailing ',' in enum declaration | Reyk Floeter | |
| 2006-02-09 | add an interface detach hook and use it with the vlan(4) driver. this | Reyk Floeter | |
| fixes a possible crash if the parent interface has been destroyed (like vlan on trunk) before destroying the vlan interface. ok brad@ | |||
| 2006-02-07 | mention source of pf_modulate_sack() in comment, no code change, | Daniel Hartmeier | |
| ok frantzen@ | |||
| 2006-02-06 | typos from alexey dobriyan; | Jason McIntyre | |
| 2006-02-02 | Set rtm_index to the correct interface index for RTM_ADD and RTM_CHANGE. | Claudio Jeker | |
| bgpd and ospfd use this information to track the availability of a route. Discussed with dlg@, OK henning@ | |||
| 2006-02-01 | Initialize rmx_expire in rt_timer_add() so that dynamic routes (e.g. PMTU) | Claudio Jeker | |
| show a correct expire time in route(8). OK and idea mpf@ looks good henning@ | |||
| 2006-01-31 | the TCP SACK option needs sequence number modulation | Mike Frantzen | |
| ok dhartmei@ and beck@. help + testing from kpfaff AT palloys.com.pl | |||
| 2006-01-30 | fix updating of tables associated with interface groups used in | Henning Brauer | |
| pass to (ifgroup) style notation. instead of walking the list of associated dynaddrs with a pf-abstracted interface which might not be present when there is no reference to them in the rulset, and checking their pointer back to the interface for group memberships, walk the groups an interface is member of directly. even makes the code easier. tests & ok bob ryan markus + tested moritz | |||
| 2006-01-23 | support PMTU-Discovery for link2 ipsec bridges; ok claudio | Markus Friedl | |
| 2006-01-18 | fix a bug in the fragment cache (used for 'scrub fragment crop/drop-ovl', | Daniel Hartmeier | |
| but not 'fragment reassemble'), which can cause some fragments to get inserted into the cache twice, thereby violating an invariant, and panic- ing the system subsequently. ok deraadt@ | |||
| 2006-01-11 | Do not use m_adj() on empty mbufs (m->m_len is uninitialised), instead bump | Claudio Jeker | |
| m->m_data directly. This fixes the tun(4) / bridge(4) crash reported in PR4963. OK djm@ mpf@ markus@ | |||
| 2006-01-06 | DIOCNATLOOK was forgotten in the second access control switch. it's a | Daniel Hartmeier | |
| read-only operation (looking up one state entry), so allow it when /dev/pf is opened read-only (allows squid to work read-only). from Andrey Matveev. | |||
| 2006-01-06 | for DIOCCLRSTATUS (pfctl -Fi), reset 'Enabled for x' time, too. simplifies | Daniel Hartmeier | |
| computations of change rates. unfortunately, I don't remember who suggested this. | |||
| 2006-01-05 | Make it possible to set a default vlan priority for vlan interfaces. | Esben Norby | |
| ok claudio@ brad@ | |||
| 2006-01-05 | bzero buffers after malloc, or clear string buffer before strlcpy'ing | Theo de Raadt | |
| into them, if you are gonna copy it out to userland some ok dhartmei, some ok tedu | |||
| 2006-01-05 | bzero after malloc; ok dhartmei | Theo de Raadt | |
| 2006-01-04 | Move bpf_mtap_hdr() after trunk_*_input() so that we hopefully see only one | Brad Smith | |
| copy of the packet with bpf. From mcbride@ some testing by todd@, ok reyk@ | |||
| 2006-01-04 | Remove redundant calls to bpfdetach. | Can Erkin Acar | |
| ok brad@ | |||
| 2005-12-22 | Do not check ifp->if_bpf before detaching from bpf. It is only a signal | Can Erkin Acar | |
| to the driver that there is a listener. Somehow I assumed that it was a handle, and was trying to figure out why it was becoming zero. Corrected by and ok claudio@ | |||
| 2005-12-21 | knf | Reyk Floeter | |
| 2005-12-21 | fix possible NULL pointer, thanks to Marco Molteni | Reyk Floeter | |
| 2005-12-18 | Update my e-mail address in the copyright statement, no binary changes. | Reyk Floeter | |
| 2005-12-17 | revert last commit as it introduced system panics due to improper use | Brad Smith | |
| of bpf_mtap(). | |||
| 2005-12-10 | m_pullup() the whole header, not the number of bytes in an int. Found | Kenneth R Westerback | |
| by lint. ok deraadt@ | |||
| 2005-12-10 | C99 section 6.8.6.4 says "A return statement with an expression shall | Kenneth R Westerback | |
| not appear in a function whose return type is void." Lint agrees. ok (and C99 spec info) cloder@ | |||
 |
index : src | |
| OpenBSD base system |
| summaryrefslogtreecommitdiff |